21460928ca36cd1ef6768676cd8924feaca1d5c7c4ab900870a982a89052468a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

21460928ca36cd1ef6768676cd8924feaca1d5c7c4ab900870a982a89052468a
Size

2.6MB
Sample

221127-1rty5afd7z
MD5

8a274b0179ee85c696a9de761b0b4d3b
SHA1

d3cdce378b83730d55df09a3587e1769869c5938
SHA256

21460928ca36cd1ef6768676cd8924feaca1d5c7c4ab900870a982a89052468a
SHA512

ed3bd99c0dd192924f2888a0053dd7312c8e9c38ba11980226d1ca11fe491a858fe3a827934eaba6e4c53b551aa950ba0e11922f590550fe68bf7fb7de49c8ab
SSDEEP

49152:6s7V2nfamZpXmvbtPelNr2+cpm4Fbsbonsv9bL4DOh+ECza7ErnvO:b7YnfaiAhPelNC+cA4FYv1XXg/vO

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  CabelsBigGameHunter2014+4Tr-LNG_v1.0/CBigGameHunter2014+4Tr-LNG_v1.0.exe
- Size
  
  2.6MB
- MD5
  
  9d36872fba9499b5bc287e2f34c7ab62
- SHA1
  
  3ebf513232621600011ccfe41f316d0961a1819a
- SHA256
  
  fce27eba5d0e73c76dbe9a6b498fe856ea31b8c133a990c7f694a8960d234c9d
- SHA512
  
  8598dcf8cb3ab91fffc65c76cd19df249f46400258013d51b74f82158884b7f44258b13e36e4bf727d9b1703641283291f1595dc1e1be8de5edaf9239a47affa
- SSDEEP
  
  49152:/T+uD4NblRa/4ZvuD2noKHfk+CILjWghdgfCyVm1SSr40SFD9kU/eZS:7+7Nblcgdu69k+BKghBDrrXBZ
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2